Changing default encryption algorithm

[Octavio Kidd]

Hi,

I got SAML SSO up and running in my app thanks to Pac4j, but one of the issues I ran into when I started working on this was that ADFS (what I'm using as IdP) by default uses SAH-256 to encrypt data. Pac4j on the other hand expects SHA-1. So I changed my test ADFS config to use SHA-1, and all was fine and dandy.

Now my question is, what if I one of my clients already has an IdP up and running, and for some internal policy (or whatever, this is just hypothetical) requires SAML interactions to use SHA-256? Is there a way to tell Pac4j to use a particular algorithm, instead of always defaulting to SHA-1?

Cheers,

Octavio

[Jérôme LELEU]

Hi,

Here is the additionnal configuration options for SAML : https://github.com/pac4j/pac4j/wiki/Clients#additional-configuration

You can define the supported algorithms and digest methods.

Thanks.

Best regards,

Jérôme

--
You received this message because you are subscribed to the Google Groups "pac4j-users" group.
To unsubscribe from this group and stop receiving emails from it, send an email to pac4j-users...@googlegroups.com.
For more options, visit https://groups.google.com/d/optout.

[Octavio Kidd]

Ah, I see. I can't use those config options, since they were introduced in Pac4j 1.8.x, and I have to use 1.7.x, because the app I'm working on runs with Java 6 :(

Thanks anyway!